Security Operations
- Analyze security systems and capabilities, seeking to continually improve
- Monitor and remediate issues and vulnerabilities in security systems
- By way of expert understanding and use of security solutions and tools, support Incident Response and security operations
- Develop integrations between hardware and software solutions to provide security outcomes
- Work with stakeholders to address vulnerabilities outside of Security Engineering area of responsibility
- Analyze emerging security threats and identifies gaps, making necessary changes to address identified gaps
- Contribute to the development and improvement of best practices and security standards for the organization
- Translate technology, environmental needs, and laws & regulations into system and security designs and requirements
- Contribute to the creation and improvement of security dashboard reporting and development
Implement and Manage Security Solutions
- Identify, assess and recommend risk-appropriate security solutions to provide for the confidentiality, integrity, and availability of organizational systems and data.
- In partnership with IT and Security Architecture, plan, research, design, and implement fitting security solutions; test solutions to ensure they achieve the expected outcome.
- Develop and maintain documentation of security solutions.
- Provide for the routine maintenance, patching, major updates, and other administrative considerations in relation to security
Vulnerability Management
- Correlate multiple data sources to identify vulnerabilities- make recommendations and work with system owners to expedite remediation
- Manage and enhance vulnerability scanning tools and capabilities
- Work with and influence system owners to adopt enhancements or remediation
MINIMUM REQUIREMENTS
Education
- Bachelorโs degree in Computer Sciences, Management Information Systems, or related discipline required
- Four (4) years of relevant experience in an IT Engineering, Administration, or development capacity may be considered in lieu of degree
Certification/License
- CISSP, GSEC, CEH, or security vendor-specific certifications preferred
Experience
- At least five (5) yearsโ experience assessing, designing & implementing IT Security Solutions required
- Experience with:
- Implementing and managing a variety of server, network, software, and other tools for the purposes of supporting security outcomes preferred
- SIEM/SOAR and other security operational tooling
- Monitoring, alerting, auditing, and presenting key performance and risk indicators required
- Using automated and manual vulnerability assessment tools and driving remediation efforts
- Splunk implementation, support, and content development preferred
- Integrating systems by way of native capabilities and custom development/scripting such as APIA
- Assessing and mitigating technology risks required
Knowledge, Skills and Abilities
- Extensive knowledge of security and compliance requirements required
- Current best practices knowledge
- Computer literate and proficient with MS Office, Word, Excel, andย Powerpoint
BENEFITS / PERKS
- Remote work if needed, local to Houston not required
- Mature security program
- Training budget
- Education assistance
- Multiple tabletops per year
- Purple team exercises
- Full medical, vision & dentalย benefits